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LISTING OF CLAIMS 

1-8. (canceled) 

9. {currently amended) A server being equipped for 
establishing a trustworthy connection between a user 
and a terminal via a user input device comprising: 

a communication component for establishing and 
conducting communications along a first trusted 
connection with the terminal and along a second trusted 
connection with said user input device, wherein the 
first trusted connection is separate from the second 
trusted connection; 

receiver means for receiving at least one 
authentication request from said terminal; 

at least one authentication component for verifying the 
authenticity of the terminal; and 

a message generation component for dynamically 
generating at least one user-specific authenticity 
output message for delivery directly to said user input 
device along said second trusted connection without 



SZ998-041 -2- 



PAGE 4/22 * RCVD AT 11/28/2005 7:12:33 PM [Eastern Standard Time] * 6VR:USPTO-EFXRF-6/27 * DNIS: 2738300* CSID: 9149621 973* DURATION (mm-ss): 06-46 



Nov 28 05 07: 13p 



HNN£ V . DOUGHERTY 



9149621973 



P. 5 



delivery of said message along the first trusted 
connection between the terminal and the server* 

10- (original) The server according to claim 9 further 
comprising a session key creation component for 
creating a session key to be communicated to said 
terminal . 

11. (original) The server according to claim 9 further 
comprising at least one storage location for storing at 
least one user-specific authenticity output message and 
wherein said message generation component accesses the 
stored at least one user-specific authenticity output 
message for display to the user at said terminal - 

12. (currently amended) A method for establishing a 
trustworthy connection between a user via a personal 
user device and a terminal which is connected to and 
authenticatable by at least one server which is 
authenticatable by said user device, comprising: 

said server authenticating said terminal; 

establishing a first authenticated trusted connection 
upon success of said authenticating; 
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said server authenticating itself to said user device; 

establishing a second trusted connection between said 
server and said user device, wherein the first trusted 
connection is separate from the second trusted 
connection; and 

said server providing a dynamically-generated terminal 
authenticity message directly to said user device via 
said established second trusted connection confirming 
the established authenticity of said terminal without 
communicating the terminal authenticity message along 
the first connection between the terminal and the 



server. 



13. (original) The method according to claim 12 further 
comprising communicating a user-specific **** terminal 
authenticity message to said user. 

14. (original) The method according to claim 13 wherein 
said communicating comprises displaying said message by 
said device. 

15. (canceled) 
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a6 (original, The method according to claim 12 -herein 
sai d providing a terminal authenticity message 

•„„ a t least one stored user-specific 
comprises accessing at least 

message. 

a7 .original The method according to claim 12 wherein 
sai d providing a terminal authenticity message 
comprises exchanging a predetermined set of messages 

with said user, 

18. (originai) The method according to claim 15 wherein 
stored predetermined authentication information (vec) 
is corticated from the device to the terminal for 
creating there an authenticity output message (xn 0 ) . 

19. (original) The method, according to claim 12 further 
comprising the device authenticating itself to the 

terminal . 

20. (original) The method according to claim 12 further 
comprising the device reguesting that the user 

authenticate himself- 

21. (original) The method according to claim 14 wherein 
the device outputs the terminal authenticity message 



SZ998-041 -5- 

PACE 7/22 * RCVD AT 11/28/2005 7:12:33 PM [Eastern Standard Time] * SVR:USPTO-EFXRF-6/27 * DNIS: 2738300 * CSID: 0140621 973 * DURATION (mm-ss): 06-46 



Nov 28 05 07: 14p 



RNN£ V . DOUGHERTY 



9149G21973 



including at least one of visible, audible and tactile 
information. 

22. (original) The method according to claim 15 wherein 
the terminal outputs the terminal authenticity message 
including at least one of visible, audible and tactile 
information. 

23. (original) The method according to claim 21 wherein 
the message is output only partially by the device, 
according to a preselection by the user. 

24. (original) The method according to claim 21 wherein 
the message is output only partially by the terminal 
according to a preselection by the user 

25. (original) The method according to claim 12 further 
comprising authenticating the device to the server. 

26. (original) The method according to claim 12 further 
comprising authenticating the user. 

27-29. (canceled) 

30. (currently amended) A program storage device 
readable by machine, tangibly embodying a program of 

SZ998-041 -6- 



PACE 8/22 * RCVD AT 1 1/28/2005 7:12:33 PM [Eastern Standard Time] * SVR:USPTO-EFXRF-6/27 * DNIS: 2738300 * CSID: 9149621 973 * DURATION <mm-ss):0&46 



Nov 28 05 07: 14p 



RNNE V. DOUGHERTY 



9149621973 



P . 9 



instructions executable by the machine to perform 
method steps for a server to establish a trustworthy 
connection between a user via a user device and a 
terxninal, said method steps comprising: 

said server authenticating said terminals- 
establishing a first authenticated trusted connection 
upon success of said authenticating; 

said server authenticating itself to said user device; 

establishing a second trusted connection between said 
server and said user device, wherein the first trusted 
connection is separate from the second trusted 
connection; and 

said server providing a dynamically-generated terminal 
authenticity message directly to said user device via 
said established second trusted connection confirming 
the established authenticity of said terminal without 
communicating the terminal authenticity message along 
the first connection between the terminal and the 
server . 
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31. (canceled) 
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